EUVD-2015-3686

Malware in sbrugna...

VMware Player Invalid DACL Privilege Escalation Vulnerability - Windows

VMware Player is prone to a privilege escalation vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vmware:player";...

VMware Workstation - vprintproxy.exe JPEG2000 Images Multiple Memory Corruptions

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=850 As already discussed in a number of reports in this tracker 285, 286, 287, 288, 289, 292, VMware Workstation current version 12.1.1 build-3770994 ships with a feature called...

VMware Workstation - vprintproxy.exe JPEG2000 Images Multiple Memory Corruptions

VMware Workstation - vprintproxy.exe JPEG2000 Images Multiple Memory Corruptions Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=850 As already discussed in a number of reports in this tracker 285, 286, 287, 288, 289, 292, VMware Workstation current version 12.1.1 build-3770994...

VMware Workstation - 'vprintproxy.exe' JPEG2000 Images Multiple Memory Corruptions

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=850 As already discussed in a number of reports in this tracker 285, 286, 287, 288, 289, 292, VMware Workstation current version 12.1.1 build-3770994 ships with a feature called "Virtual Printers", which enables the virtualized...

VMware Workstation - vprintproxy.exe TrueType NAME Tables Heap Buffer Overflow

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=849 As already discussed in a number of reports in this tracker 285, 286, 287, 288, 289, 292, VMware Workstation current version 12.1.1 build-3770994 ships with a feature called...

VMware Workstation - vprintproxy.exe TrueType NAME Tables Heap Buffer Overflow (PoC)

VMware Workstation - vprintproxy.exe TrueType NAME Tables Heap Buffer Overflow PoC Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=849 As already discussed in a number of reports in this tracker 285, 286, 287, 288, 289, 292, VMware Workstation current version 12.1.1 build-377099...

VMware Workstation - 'vprintproxy.exe' TrueType NAME Tables Heap Buffer Overflow (PoC)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=849 As already discussed in a number of reports in this tracker 285, 286, 287, 288, 289, 292, VMware Workstation current version 12.1.1 build-3770994 ships with a feature called "Virtual Printers", which enables the virtualized...

Design/Logic Flaw

vmware-vmx.exe in VMware Workstation 7.x through 10.x before 10.0.7 and 11.x before 11.1.1, VMware Player 5.x and 6.x before 6.0.7 and 7.x before 7.1.1, and VMware Horizon Client 5.x local-mode before 5.4.2 on Windows does not provide a valid DACL pointer during the setup of the vprintproxy.exe...

CVE-2015-3650

CVE-2015-3650 affects VMware desktop products (Workstation, Player, Horizon Client) on Windows. A privilege-escalation occurs due to failure to set a proper DACL for a process (vprintproxy.exe/related printproxy path), allowing a local attacker to inject a thread and potentially gain host-level p...